<?php
session_start();
include("db.php"); include("functions.inc.php");
if(exist("users WHERE name = '".umbruch($_REQUEST["name"])."' AND passwort = '".md5($_REQUEST["passwort"])."' AND status = '1'") && anzahl("users_login WHERE ip = '".getenv("REMOTE_ADDR")."' AND erfolgreich = '0' AND timestamp > '".(time()-60*30)."'") < 4) {
$_SESSION["login"] = value("users WHERE name = '".umbruch($_REQUEST["name"])."' AND passwort = '".md5($_REQUEST["passwort"])."' AND status = '1'","id");
if($_REQUEST["bleiben"] == "1") {
setcookie("webvids_name",umbruch($_REQUEST["name"]),(time()+60*60*24*14));
setcookie("webvids_passwort",md5($_REQUEST["passwort"]),(time()+60*60*24*14));
}
mysql_query("INSERT INTO users_login (name, ip, timestamp, erfolgreich) VALUES ('".umbruch($_REQUEST["name"])."', '".getenv("REMOTE_ADDR")."', '".time()."', '1')");
header("Location: memberarea.php");
} else {
mysql_query("INSERT INTO users_login (name, ip, timestamp, erfolgreich) VALUES ('".umbruch($_REQUEST["name"])."', '".getenv("REMOTE_ADDR")."', '".time()."', '0')");
if(anzahl("users_login WHERE ip = '".getenv("REMOTE_ADDR")."' AND erfolgreich = '0' AND timestamp > '".(time()-60*30)."'") >= 4) {
header("Location: login_fehler.php?fehler=1");
} else {
header("Location: login_fehler.php?fehler=2");
}
}
?>